{"id":27723,"date":"2019-07-09T14:37:14","date_gmt":"2019-07-09T14:37:14","guid":{"rendered":"https:\/\/blog.trendmicro.com\/?p=543041"},"modified":"2019-07-09T14:37:14","modified_gmt":"2019-07-09T14:37:14","slug":"where-will-ransomware-go-in-the-second-half-of-2019","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/","title":{"rendered":"Where Will Ransomware Go In The Second Half Of 2019?"},"content":{"rendered":"<p>Ransomware has been an evolutionary malware family that continues to shift and change over the years. From the first fakeAV, to police ransomware, to the now oft-used crypto-ransomware, this threat just will not go away. Based on the latest trends, we predict this threat will grow in the second half of this year.<\/p>\n<p>At Trend Micro, we\u2019ve been following and tracking the data around ransomware for years. Here are some of the changes we\u2019ve been seeing:<\/p>\n<p><strong>Year-Over-Year Ransomware Detections from Trend Micro\u2122 <a href=\"https:\/\/www.trendmicro.com\/en_us\/business\/technologies\/smart-protection-network.html\">Smart Protection Network\u2122<\/a><\/strong><\/p>\n<table>\n<tbody readability=\"5.5\">\n<tr readability=\"11\">\n<td width=\"20px\"><\/td>\n<td>\n<table width=\"0\">\n<tbody>\n<tr>\n<td width=\"200\">2016<\/td>\n<td width=\"200\">1,078,091,703<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2017<\/td>\n<td width=\"200\">631,128,278<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2018<\/td>\n<td width=\"200\">55,470,005<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2019 (Jan to May)<\/td>\n<td width=\"200\">43,854,210<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Year-Over-Year Number of New Ransomware Families<\/strong><\/p>\n<table>\n<tbody readability=\"1\">\n<tr readability=\"2\">\n<td width=\"20px\"><\/td>\n<td>\n<table width=\"0\">\n<tbody>\n<tr>\n<td width=\"200\">2016<\/td>\n<td width=\"200\">247<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2017<\/td>\n<td width=\"200\">327<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2018<\/td>\n<td width=\"200\">222<\/td>\n<\/tr>\n<tr>\n<td width=\"200\">2019 (Jan to May)<\/td>\n<td width=\"200\">44<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>You can see that ransomware actors were very busy in 2016 and 2017 both in launching attacks and in the development of new families and variants of ransomware. In 2018, we had a drop in both figures, which could be due to a number of factors:<\/p>\n<table>\n<tbody readability=\"2\">\n<tr readability=\"4\">\n<td width=\"20px\"><\/td>\n<td>\n<ol>\n<li>Improved practices within organizations to recover from attacks (i.e. backup and recovery)<\/li>\n<li>Improved detection technologies within the security industry (i.e. machine learning can proactively detect new families and variants)<\/li>\n<\/ol>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>However, in the first half of 2019 we have seen in the news some very high profile attacks against organizations with successful ransomware causing some victims to pay high ransom amounts or taking weeks to months to recover from the attacks. These attacks have shown that we still need to be very vigilant in protecting networks against this threat.<\/p>\n<p>Trend Micro publishes a predictions report each year to help organizations understand what might occur, and while we did this for 2019, I would like to give you some ideas on where ransomware might go in the second half of 2019 as this threat seems to change very often. Let\u2019s look at the different areas of the ransomware attack lifecycle and what we may see for the rest of the year.<\/p>\n<p><strong>Identifying a Victim<\/strong><\/p>\n<p>Ransomware actors are being much more targeted in their selection of victims they want to attack. This is due to the above 2 reasons behind why we saw ransomware drop in 2018. In response, actors are looking to target those organizations that are more likely to fall for an attack, but also those who are more likely to pay a higher ransomware. In the first half of 2019, you can see the industries we saw targeted most:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-543042 aligncenter\" src=\"https:\/\/blog.trendmicro.com\/wp-content\/uploads\/2019\/07\/Capture-300x218.png\" alt width=\"410\" height=\"298\" srcset=\"https:\/\/blog.trendmicro.com\/wp-content\/uploads\/2019\/07\/Capture-300x218.png 300w, https:\/\/blog.trendmicro.com\/wp-content\/uploads\/2019\/07\/Capture-380x276.png 380w, https:\/\/blog.trendmicro.com\/wp-content\/uploads\/2019\/07\/Capture.png 424w\" sizes=\"auto, (max-width: 410px) 100vw, 410px\"><\/p>\n<p>Government, manufacturing, and healthcare are the top 3 industries actors seem to be targeting more than any other. Ransomware actors will also do open source intelligence (OSINT) about each targeted victim to build a profile of them to identify the best way to successfully attack them. There are a number of reasons for this selection and OSINT process:<\/p>\n<table>\n<tbody readability=\"2.5\">\n<tr readability=\"5\">\n<td width=\"20px\"><\/td>\n<td>\n<ul>\n<li>Understand the organization\u2019s business model and how affecting their critical systems could cause them public reputational damage<\/li>\n<li>If they have critical systems that can be isolated by ransomware then they are more likely to pay the ransom<\/li>\n<li>Whether their security posture and processes are adequate or can be taken advantage of<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>In the second half of 2019, actors will look to diversify into more industries that have critical business systems that could be compromised. This might include the legal, energy and critical infrastructure, transportation, and distribution industries.<\/p>\n<p>Once they decide on a victim, they will then identify the ways to initially infect the organizations. This is the area that most changes based on the actors behind this threat.<\/p>\n<p><strong>Initial Infection<\/strong><\/p>\n<p>A number of shifts have occurred in this area over time, and this will likely continue to change. Recently we\u2019ve seen the actors using phishing, malvertising, malicious webpages, exploits and exploit kits to infect an organization. We will continue to see them look to initially infect and organization through their employees, as this still appears to be their best option. But, in the second half of 2019 I see the following scenario occurring:<\/p>\n<table>\n<tbody readability=\"2.5\">\n<tr readability=\"5\">\n<td width=\"20px\"><\/td>\n<td>\n<ol>\n<li>Ransomware actors will improve their ability to craft socially engineered attacks against employees through their OSINT gathering.<\/li>\n<li>We will see increased use of stolen credentials (i.e. RDP account credentials) that are sold in the underground.<\/li>\n<li>Manual lateral movement and the use of hacking tools will allow the actors to find the critical systems they need to compromise to make attacks successful.<\/li>\n<\/ol>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Obfuscation Techniques<\/strong><\/p>\n<p>As mentioned above, ransomware has been detected more effectively recently due to advances in machine learning and behavior monitoring technologies deployed across the network. As such, the actors have to improve their obfuscation of the malware to ensure it cannot be detected by today\u2019s security applications.<\/p>\n<p>We\u2019ve been seeing improved anti-sandbox, anti-machine learning, fileless, and other techniques used in the past, and moving forward we will see advances in all of these areas. The use of compromised legitimate software, including those from security vendors themselves, will also continue as a method to circumvent security measures. As we saw recently with a compromised MSP, one company\u2019s direct access to multiple organization\u2019s networks can also be leveraged for attacks. Stolen certificates will also be used to sign malware to make it look legitimate.<\/p>\n<p>I expect ransomware actors will continue to target high value, high quality victims in 2H\u201919, and as such, all organizations need to be vigilant in protecting against this threat. Unless we can ensure no ransoms are paid, we will see this threat persist. Improving your organization\u2019s ability to detect, respond, and recover from any <a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/cybercrime-and-digital-threats\/ransomware-101-what-it-is-and-how-it-works\">ransomware<\/a> will help us minimize this threat moving forward.&nbsp; For more information on the latest trends in ransomware, you can watch my <a href=\"https:\/\/www.trendmicro.com\/content\/trendmicro\/en_us\/about\/webinars\/latest-on-ransomware.html\">June 2019 Threat Webinar Series<\/a> that covers the recent trends in ransomware.<\/p>\n<p>Trend Micro will publish our 2020 predictions report later this year, but until then, stay rigorous in your defense against ransomware.<\/p>\n<p> Read More <a href=\"https:\/\/blog.trendmicro.com\/where-will-ransomware-go-in-the-second-half-of-2019\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ransomware has been an evolutionary malware family that continues to shift and change over the years. From the first fakeAV, to police ransomware, to the now oft-used crypto-ransomware, this threat just will not go away. Based on the latest trends, we predict this threat will grow in the second half of this year. At Trend&#8230;<br \/>\nThe post Where Will Ransomware Go In The Second Half Of 2019? appeared first on . Read More HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":27724,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[61],"tags":[91,307],"class_list":["post-27723","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-trendmicro","tag-ransomware","tag-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-07-09T14:37:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png\" \/>\n\t<meta property=\"og:image:width\" content=\"300\" \/>\n\t<meta property=\"og:image:height\" content=\"218\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Where Will Ransomware Go In The Second Half Of 2019?\",\"datePublished\":\"2019-07-09T14:37:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/\"},\"wordCount\":948,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/07\\\/where-will-ransomware-go-in-the-second-half-of-2019.png\",\"keywords\":[\"ransomware\",\"Security\"],\"articleSection\":[\"TrendMicro\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/\",\"name\":\"Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/07\\\/where-will-ransomware-go-in-the-second-half-of-2019.png\",\"datePublished\":\"2019-07-09T14:37:14+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/07\\\/where-will-ransomware-go-in-the-second-half-of-2019.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/07\\\/where-will-ransomware-go-in-the-second-half-of-2019.png\",\"width\":300,\"height\":218},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/where-will-ransomware-go-in-the-second-half-of-2019\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"ransomware\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/ransomware\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Where Will Ransomware Go In The Second Half Of 2019?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/","og_locale":"en_US","og_type":"article","og_title":"Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-07-09T14:37:14+00:00","og_image":[{"width":300,"height":218,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Where Will Ransomware Go In The Second Half Of 2019?","datePublished":"2019-07-09T14:37:14+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/"},"wordCount":948,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png","keywords":["ransomware","Security"],"articleSection":["TrendMicro"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/","url":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/","name":"Where Will Ransomware Go In The Second Half Of 2019? 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png","datePublished":"2019-07-09T14:37:14+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/07\/where-will-ransomware-go-in-the-second-half-of-2019.png","width":300,"height":218},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/where-will-ransomware-go-in-the-second-half-of-2019\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"ransomware","item":"https:\/\/www.threatshub.org\/blog\/tag\/ransomware\/"},{"@type":"ListItem","position":3,"name":"Where Will Ransomware Go In The Second Half Of 2019?"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/27723","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=27723"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/27723\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/27724"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=27723"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=27723"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=27723"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}